qrcode uses an outdated version or yargs with a vulnerable transitive dependency

[davidsyckle]

qrcode uses a direct dependency ("yargs": "^15.3.1") that pulls in a vulnerable component (y18n@4.0.3). Please update yargs to 17.0.2 or newer to remediate this issue. :)

[MoggyPersonal]

This is showing a critical vulnerability for us in AWS Inspector, please can this be soon, given it was raised in Sept 24